summaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-support
Commit message (Collapse)AuthorAgeFilesLines
...
* ntp: upgrade 4.2.8p3 -> 4.2.8p4Wenzong Fan2015-11-111-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | 4.2.8p4 fixed following 13 low- and medium-severity vulnerabilities: * Bug 2941 CVE-2015-7871 * Bug 2922 CVE-2015-7855 * Bug 2921 CVE-2015-7854 * Bug 2920 CVE-2015-7853 * Bug 2919 CVE-2015-7852 * Bug 2918 CVE-2015-7851 * Bug 2917 CVE-2015-7850 * Bug 2916 CVE-2015-7849 * Bug 2913 CVE-2015-7848 * Bug 2909 CVE-2015-7701 * Bug 2902 CVE-2015-7703 * Bug 2901 CVE-2015-7704, CVE-2015-7705 * Bug 2899 CVE-2015-7691, CVE-2015-7692, CVE-2015-7702 And three bugs: Bug 2382, 1774, 1593 Details at: http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* netcf: use autotools-bootstrap.bbclassAndreas Müller2015-11-061-7/+1
| | | | Signed-off-by: Andreas Müller <schnitzeltony@googlemail.com>
* gnulib: move meta-networking -> meta-oeAndreas Müller2015-11-061-32/+0
| | | | | | | A more common place is required for gnulib because of other recipes (e.g fontforge) will depend on it Signed-off-by: Andreas Müller <schnitzeltony@googlemail.com>
* vpnc, arptables, lirc, debootstrap, log4cpp, python-ldap: drop unused ↵Martin Jansa2015-10-231-1/+0
| | | | | | variable PRIORITY Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* drbd: fix permission bits of drbd.serviceQi.Chen@windriver.com2015-10-212-0/+26
| | | | | | | | The permission bits should be 0644 instead of 0755. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update package to 1.12.8Armin Kuster2015-10-211-2/+2
| | | | | | | | | | changes include CVE-2015-7830 see https://www.wireshark.org/docs/relnotes/wireshark-1.12.8.html Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: fix rpath QA issueQi.Chen@windriver.com2015-10-211-0/+1
| | | | | | | | | | | | | When ntp could be correctly built with openssh and libcrypto, we would meet the following QA issue. WARNING: QA Issue: package ntp contains bad RPATH ... [rpath] Fix this problem by adding '--disable-rpath' to EXTRA_OECONF. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* drbd-utils: fix multilib problemQi.Chen@windriver.com2015-10-211-4/+4
| | | | | | | | | If multilib is enabled, errors about 'installed-not-shipped' would appear. This patch fixes this problem. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dnsmasq: upgrade 2.72->2.75leimaohui2015-09-153-29/+9
| | | | | | | | -parallel-make.patch is not needed any more,so delete. Signed-off-by: Lei Maohui <leimaohui@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* iftop: 1.0pre2 -> 1.0pre4Kai Kang2015-09-141-3/+3
| | | | | | | | * update md5sum of license file Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* drbd: upgrade 8.4.4 -> 8.9.3Li xin2015-09-113-36/+49
| | | | | | | | | | | | | | | | * Change recipe name from drbd to drbd-utils,since after 8.4.5, the drbd userland tools had been moved to their own repository at http://git.linbit.com/drbd-utils.git (tarball at http://oss.linbit.com/drbd) * Add 0001-Makefile.in-don-t-compile-documentation.patch to avoid build Errors. * Dropped drbd.service,since it is provided by Upstream. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ypbind-mt: add status command for initscriptZhu Yanjun2015-09-113-4/+11
| | | | | | | | | | Add the "status" command in initscript to check the status of ypbind. remove ypbind-yocto.init as ypbind.init, which is the initscript, make its name similar to other recipes Signed-off-by: Zhu Yanjun <yanjun.zhu@windriver.com> Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* tcpdump: add PACKAGECONFIG for smiMartin Jansa2015-08-311-0/+1
| | | | | | | | | | | | | | | | | | * libsmi is autodetected in configure, but in most cases disabled because of cross-compilation so keep it explicitly disabled * resolves following difference in builds with and without libsmi built before tcpdump: 4.7.4-r0-with/temp/log.do_configure:checking smi.h usability... yes 4.7.4-r0-with/temp/log.do_configure:checking smi.h presence... yes 4.7.4-r0-with/temp/log.do_configure:checking for smi.h... yes 4.7.4-r0-with/temp/log.do_configure:checking for smiInit in -lsmi... yes 4.7.4-r0-with/temp/log.do_configure:checking whether to enable libsmi... not when cross-compiling 4.7.4-r0-without/temp/log.do_configure:checking smi.h usability... no 4.7.4-r0-without/temp/log.do_configure:checking smi.h presence... no 4.7.4-r0-without/temp/log.do_configure:checking for smi.h... no Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* cim-schema-exper: add new recipe for openlmileimaohui2015-08-313-0/+64
| | | | | | | | - Cim-schema-exper(Experimental-MOFs) is dependence of openlmi. - Cim-schema_2.40.0.bb is renamed to cim-schema-final_2.40.0.bb. Signed-off-by: Lei Maohui <leimaohui@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* geoip: upgrade 1.6.0 -> 1.6.6Li xin2015-08-191-7/+5
| | | | | | | | | | | *Modify SRC_URI. *Modify chksum of file COPYING and LICENSE,since year changed, and the LICENSE explanation for file base64.c, md5.c and types.h was deleted.But the LICENSE has not been changed. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: Update packageArmin Kuster2015-08-191-3/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | minor recipe updates. This update contains several security updates: * [1]wnpa-sec-2015-21 Protocol tree crash. ([2]Bug 11309) * [3]wnpa-sec-2015-22 Memory manager crash. ([4]Bug 11373) * [5]wnpa-sec-2015-23 Dissector table crash. ([6]Bug 11381) * [7]wnpa-sec-2015-24 ZigBee crash. ([8]Bug 11389) * [9]wnpa-sec-2015-25 GSM RLC/MAC infinite loop. ([10]Bug 11358) * [11]wnpa-sec-2015-26 WaveAgent crash. ([12]Bug 11358) * [13]wnpa-sec-2015-27 OpenFlow infinite loop. ([14]Bug 11358) * [15]wnpa-sec-2015-28 Ptvcursor crash. ([16]Bug 11358) * [17]wnpa-sec-2015-29 WCCP crash. ([18]Bug 11358) Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netcf: support multilib buildsJoe MacDonald2015-08-191-2/+12
| | | | | | | | | | | | When doing a multilib build, /usr/lib is still created but not collected into FILES_${PN} by default, resulting in a QA error. Adding both ${libdir} and ${nonarch_libdir} catches all scenarios. It also turns out that the previous do_install_append would throw an error in a multilib build since systemd always installs to .../lib/... but ${libdir] would point at .../lib64/... Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netcf: upgrade 0.2.3 -> 0.2.8Li xin2015-08-071-5/+17
| | | | | | | add systemd support for netcf Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ypbind-mt: add dependency but keep as brokenJoe Slater2015-08-061-1/+1
| | | | | | | | We will need the conditional dependency on systemd. Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* stunnel: upgrade 5.17 -> 5.21Li xin2015-08-061-2/+2
| | | | | | Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* tcpslice: fix do_installRoy Li2015-08-061-1/+2
| | | | | | | | | | replace to run "make install" with directly calling install command, since "make install" asks "bin" user and group, and maybe fail when system has not; Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* openvpn: upgrade 2.3.6 -> 2.3.7Li xin2015-08-061-2/+2
| | | | | | Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* strongswan: upgrade to 5.3.2Roy Li2015-08-061-2/+2
| | | | | | | | 5.3.2 includes the fixes for CVE-2015-3991 and CVE-2015-4171 Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: upgrade 4.2.8p2 -> 4.2.8p3Li xin2015-08-061-2/+2
| | | | | | | | 4.2.8p3 fixed CVE-2015-5146 and Bugs. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dovecot: upgrade 2.2.10 -> 2.2.18Li xin2015-08-063-73/+19
| | | | | | | | | | | Dropped building-rquota_xdr.c-depend-on-rquota.h.patch,since 2.2.18 fixed the problem. Update 0001-configure.ac-convert-AC_TRY_RUN-to-AC_TRY_LINK-state.patch,since the file configure.ac has been changed. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netperf: fix the broken download urlZongchun Yu2015-08-031-1/+1
| | | | | Signed-off-by: Zongchun Yu <Zongchun.Yu@freescale.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* ypbind: remove bashisms from initscriptJoe MacDonald2015-07-301-3/+3
| | | | | | | | Remove three very minor bashisms, all about redirecting stdout/stderr. The initscript identifies as /bin/sh, this change ensures that the script should work with a non-bash /bin/sh as well. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* nbd: Add new packageArmin Kuster2015-07-151-0/+19
| | | | | | Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* drbd ufw linux-atm: correct certain packaging errorJoe Slater2015-07-062-3/+8
| | | | | | | | | | The named packages explicitly install some items under /lib, but the recipes assume they are in base_libdir. We change the recipes. Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 1.12.6Armin Kuster2015-07-061-2/+2
| | | | | | | | | | | | | | include a security fixes but no CVE # The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-19 WCCP dissector crash. ([2]Bug 11153) * [3]wnpa-sec-2015-20 GSM DTAP dissector crash. ([4]Bug 11201) Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 12.5Armin Kuster2015-06-051-9/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | fixed broken url and cleaned up the PACKAGECONFIG removed patch as it is included in this release The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-12 The LBMR dissector could go into an infinite loop. ([2]Bug 11036) [3]CVE-2015-3808 [4]CVE-2015-3809 * [5]wnpa-sec-2015-13 The WebSocket dissector could recurse excessively. ([6]Bug 10989) [7]CVE-2015-3810 * [8]wnpa-sec-2015-14 The WCP dissector could crash while decompressing data. ([9]Bug 10978) [10]CVE-2015-3811 * [11]wnpa-sec-2015-15 The X11 dissector could leak memory. ([12]Bug 11088) [13]CVE-2015-3812 * [14]wnpa-sec-2015-16 The packet reassembly code could leak memory. ([15]Bug 11129) [16]CVE-2015-3813 * [17]wnpa-sec-2015-17 The IEEE 802.11 dissector could go into an infinite loop. ([18]Bug 11110) [19]CVE-2015-3814 * [20]wnpa-sec-2015-18 The Android Logcat file parser could crash. Discovered by Hanno Böck. ([21]Bug 11188) [22]CVE-2015-3815 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* meta-networking: standardize SECTION valuesJoe MacDonald2015-06-0546-42/+47
| | | | | | | SECTION has been used inconsistently throughout the recipes in this layer. Convert them to all use the same convention. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dovecot: add systemd support and add user dovecot dovenull which is need to ↵Li xin2015-06-053-3/+51
| | | | | | | | start dovecot service. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipsec-tools: Security Advisory - CVE-2015-4047Roy Li2015-06-052-0/+37
| | | | | | | | | This fixed the CVE-2015-4047: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4047 Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* stunnel: upgrade to 5.17Roy Li2015-06-051-2/+2
| | | | | | | | | upgrade to include the fix for CVE-2015-3644: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3644 Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntimed: add recipe to meta-networking (git version)Christopher Larson2015-06-052-0/+57
| | | | | | | | | | | Ntimed is an unreleased ntpd replacement being sponsored by the Linux Foundation. Currently it only includes a work-in-progress client, but for future use this recipe emits an ntimed-client package and an ntimed meta package which will pull in client and server. Signed-off-by: Christopher Larson <kergoth@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* geoipupdate: update to 2.2.1Lei Maohui2015-06-053-5/+5
| | | | | | | | | | | | | - `geoipupdate` now verifies the MD5 of the new database before deploying it. If the database MD5 does not match the expected MD5, `geoipupdate` will exit with an error. - The copy of `base64.c` and `base64.h` was switched to a version under GPL 2+ to prevent a license conflict. - The `LICENSE` file was added to the distribution. - Several issues in the documentation were fixed. Signed-off-by: Lei Maohui <leimaohui@cn.fujitsu.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: control refclock driver support via PACKAGECONFIGAndre McCurdy2015-05-131-2/+3
| | | | | | | | | | | | The default configuration of ntp includes a large number of reference clock drivers. Provide a PACKAGECONFIG to allow control over whether or not these refclock drivers are built. Leave enabled by default. http://doc.ntp.org/4.2.8/refclock.html Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* tcpdump: upgrade to 4.7.4Roy Li2015-05-137-56/+2
| | | | | | | Remove two unneeded patches, configure.patch and tcpdump-cross-getaddrinfo.patch Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* strongswan: upgrade to 5.3.0Roy Li2015-05-131-2/+2
| | | | | Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* cifs-utils: upgrade to 6.4Roy Li2015-05-081-3/+2
| | | | | | | | | | | 6.4 fixed a CVE defect: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2830 Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils before 6.4, as used in pam_cifscreds, allows remote attackers to have unspecified impact via unknown vectors. Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipsec-tools: set SYSTEMD_SERVICE correctly to avoid building warning.Bian Naimeng2015-05-081-0/+5
| | | | | | | | | | | | ipsec-tools-0.8.2: ipsec-tools: Files/directories were installed but not shipped /lib /lib/systemd /lib/systemd/system /lib/systemd/system/racoon.service [installed-vs-shipped] Signed-off-by: Bian Naimeng <biannm@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netcat-openbsd: add LIC_FILES_CHKSUMChunrong Guo2015-05-081-0/+1
| | | | | | Signed-off-by: Chunrong Guo <B40290@freescale.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: uprev to 4.2.8p2Roy Li2015-05-082-172/+3
| | | | | | | | | ntp 4.2.8p2 has more CVE fixes, like CVE-2015-1799, CVE-2015-1798; and remove ntp-4.2.8-ntp-keygen-no-openssl.patch which 4.2.8p2 has integrated Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* lksctp-tools: make -utils and -ptest recommend sctp kernel moduleDmitry Eremin-Solenikov2015-05-081-0/+3
| | | | | | | | | Neither -utils nor -ptest packages make sense w/o actual kernel support for SCTP protocol. Make both packages RRECOMMEND kernel-module-sctp. Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin@mentor.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipvsadm: Add version 1.26 (initial recipe)Jianchuan Wang2015-04-154-0/+234
| | | | | | | | * add ipvs administration tool Signed-off-by: Jianchuan Wang <jianchuan.wang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ypbind-mt: Add systemd dependencyJoe MacDonald2015-04-071-1/+4
| | | | | | | | When building for a system including systemd ypbind-mt will link against libsystemd creating an implicit dependency. Make that explicit. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* smcroute: add version 2.0.0 with /usr/sbin and endless loop fixesDenys Dmytriyenko2015-03-211-0/+13
| | | | | Signed-off-by: Denys Dmytriyenko <denys@ti.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* GeoIP: update checksumsJoe MacDonald2015-03-181-9/+8
| | | | Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* esmtp: update sendmail link filesKang Kai2015-03-101-12/+12
| | | | | | | | | | | | | | | | | esmtp use 'sbinsendmail' to define alternative ${sbindir}/sendmail, but other packages msmtp and postfix use 'sendmail'. When remove esmtp, it removes ${sbindir}/sendmail even msmtp or postfix is installed which has alternative ${sbindir}/sendmail. Make esmtp use 'sendmail' too to fix this issue. Remove ${libdir}/sendmail which is only used by LSB core test for historical reasons. And only create link file with fixed path /usr/lib/sendmail for LSB images even for 64 bits system. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-05 14:40:15 +0000